CVE-2025-29085: Vipshop Saturn Console Vulnerable to SQL Injection via ClusterKey Component

Severity: Critical

CVSS Score: 9.8

SQL injection vulnerability in vipshop Saturn v.3.5.1 and before allows a remote attacker to execute arbitrary code via /console/dashboard/executorCount?zkClusterKey component.